| US 7,581,248 B2 | ||
| Federated identity brokering | ||
| Barry D. Atkins, Raleigh, N.C. (US); David O. Melgar, Raleigh, N.C. (US); Anthony Nadalin, Austin, Tex. (US); and Ajamu A. Wesley, Concord, Mass. (US) | ||
| Assigned to International Business Machines Corporation, Armonk, N.Y. (US) | ||
| Filed on Jun. 28, 2004, as Appl. No. 10/878,855. | ||
| Prior Publication US 2006/0021010 A1, Jan. 26, 2006 | ||
| Int. Cl. H04L 29/12 (2006.01); H04L 29/06 (2006.01); H04L 29/04 (2006.01) | ||
| U.S. Cl. 726—18 [726/19; 726/21] | 16 Claims |
| 1. A federated identity brokering method, within a gateway service/proxy, comprising the steps of:
intercepting a service request from a service requestor targeting a specific logical service;
comparing a security credential associated with said service request to credential requirements specified by said specific
logical service;
modifying said security credential to comport with said credential requirements; and,
routing said intercepted service request with said modified security credential to said specific logical service, wherein
said gateway service/proxy is disposed in a demilitarized zone, and
said specific logical service disposed in a private network domain.
|